Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258701 4.3 警告 The Dojo Foundation
Apache Software Foundation
- Apache Struts などで利用される Dojo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6726 2011-06-10 09:51 2009-04-9 Show GitHub Exploit DB Packet Storm
258702 4.3 警告 Apache Software Foundation - Apache Struts の LookupDispatchAction、DispatchAction および ActionDispatcher におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-1548 2011-06-10 09:50 2006-03-30 Show GitHub Exploit DB Packet Storm
258703 7.8 危険 Apache Software Foundation - Apache Struts (with BeanUtils) の ActionForm におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-1547 2011-06-10 09:50 2006-03-30 Show GitHub Exploit DB Packet Storm
258704 4.3 警告 Apache Software Foundation
レッドハット
- Apache Struts におけるクロスサイトスクリプティングの脆弱性 - CVE-2005-3745 2011-06-10 09:49 2005-11-22 Show GitHub Exploit DB Packet Storm
258705 4.6 警告 Linux
レッドハット
- Linux kernel の bond_select_queue 関数におけるサービス運用妨害 (DoS)の脆弱性 CWE-20
不適切な入力確認
CVE-2011-1581 2011-06-9 10:31 2011-05-18 Show GitHub Exploit DB Packet Storm
258706 10 危険 Google
レッドハット
- Google Chrome におけるアドレスバーを偽装される脆弱性 CWE-DesignError
CVE-2010-3115 2011-06-9 10:30 2010-08-19 Show GitHub Exploit DB Packet Storm
258707 10 危険 Google
レッドハット
- Google Chrome の text-editing 実装における脆弱性 CWE-399
リソース管理の問題
CVE-2010-3114 2011-06-9 10:30 2010-08-19 Show GitHub Exploit DB Packet Storm
258708 10 危険 Google
レッドハット
- Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-3113 2011-06-9 10:29 2010-08-19 Show GitHub Exploit DB Packet Storm
258709 10 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-3112 2011-06-9 10:29 2010-08-19 Show GitHub Exploit DB Packet Storm
258710 10 危険 Google - Google Chrome における脆弱性 CWE-noinfo
情報不足
CVE-2010-3111 2011-06-9 10:28 2010-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247761 7.8 HIGH
Local
audiocoding freeware_advanced_audio_decoder_2 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. There was a heap-based buffer overflow in the function excluded_channels() in libfaad/syntax.c. CWE-787
 Out-of-bounds Write
CVE-2018-19502 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247762 7.2 HIGH
Network
vanillaforums vanilla Vanilla before 2.5.5 and 2.6.x before 2.6.2 allows Remote Code Execution because authenticated administrators have a reachable call to unserialize in the Gdn_Format class. CWE-502
 Deserialization of Untrusted Data
CVE-2018-19499 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247763 7.8 HIGH
Local
gnuplot
debian
opensuse
gnuplot
debian_linux
leap
An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrm_options function. This flaw is cause… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-19492 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247764 7.8 HIGH
Local
gnuplot
debian
opensuse
gnuplot
debian_linux
leap
An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PS_options function. This flaw is caused by a … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-19491 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247765 7.8 HIGH
Local
gnuplot
debian
opensuse
gnuplot
debian_linux
leap
An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue allows an attacker to conduct a heap-based buffer overflow with an arbitrary amount of data in df_generate_ascii_array_entry. To exp… CWE-787
 Out-of-bounds Write
CVE-2018-19490 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247766 9.8 CRITICAL
Network
git-scm
canonical
git
ubuntu_linux
Git before 2.19.2 on Linux and UNIX executes commands from the current working directory (as if '.' were at the end of $PATH) in certain cases involving the run_command() API and run-command.c, becau… CWE-426
 Untrusted Search Path
CVE-2018-19486 2024-11-21 12:58 2018-11-23 Show GitHub Exploit DB Packet Storm
247767 5.4 MEDIUM
Network
microsoft sharepoint_enterprise_server An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint … CWE-79
Cross-site Scripting
CVE-2018-1014 2024-11-21 12:58 2018-04-12 Show GitHub Exploit DB Packet Storm
247768 7.8 HIGH
Local
microsoft excel
excel_rt
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This … NVD-CWE-noinfo
CVE-2018-1011 2024-11-21 12:58 2018-04-12 Show GitHub Exploit DB Packet Storm
247769 7.8 HIGH
Local
microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_10
windows_8.1
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory, aka "Microsoft DirectX Graphics Kernel Subsystem Elevation of Priv… NVD-CWE-noinfo
CVE-2018-1009 2024-11-21 12:58 2018-04-12 Show GitHub Exploit DB Packet Storm
247770 5.3 MEDIUM
Network
microsoft office An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microso… NVD-CWE-noinfo
CVE-2018-1007 2024-11-21 12:58 2018-04-12 Show GitHub Exploit DB Packet Storm